Get in touch now on

+61 7 3480 5121

Fooling Windows 10 facial authentication with a photo
21 December, 2017
This post was originally published on this site

Maybe you’re one of those people who care enough about the security and privacy of your computer that you enable the facial recognition feature built into versions of Windows 10, but find it too much of a pain to set up a password.

If so, you’re potentially at risk of having your computer unlocked by an attacker holding a modified low resolution laser-printed photograph of you in front of your webcam.

As described on the Full Disclosure mailing list, a team of German penetration testers discovered it was all too easy to trick a locked Windows 10 system into letting them login using a “modified printed photo of an authorised user.”

Windows Hello is a feature currently only shipping in Windows 10, allowing PCs with the necessary hardware to use special imaging techniques to let you sign in with just a look.

The researchers tested the spoofing attack against a Dell Latitude E7470 laptop running Windows 10 Pro (Version 1703) with a Windows Hello compatible webcam, and against a Microsoft Surface Pro 4 device running Windows 10 Pro (Version 1607) with a built-in camera.

The results were disappointing for those who care about security:

The default Windows Hello configuration could successfully be bypassed on both test devices with all tested Windows 10 versions. The more secure configuration with enabled “enhanced anti-spoofing” feature could only successfully be bypassed on the Windows 10 branches 1511 and 1607.

You can see the attack in action in the following YouTube video:

[embedded content]

In October Microsoft rolled out Windows Creator updates to address the vulnerabilities discovered by the researchers, but users are recommended to enable the “enhanced anti-spoofing” feature of Windows Hello, and setup Windows Hello Face Authentication from scratch again to ensure that it can repel any unauthorised users.

Facial authentication

read more ...

What our
Clients say

Product Finder

Search for products that match of these criteria:

 + Add row
System Diagnostic

  • Do you have five or more computers?
  • Do you have a server?
  • Is your data critical to your business?
  • Do you think IT could perform better?
  • Are you concerned about your IT security?
  • Do you need to be kept up to date?
  • Would you like your IT maintained?
Product Finder

Search for products that match of these criteria:

 + Add row



Phone:07 3480 5121

Address: 8 - 37 Flinders Parade, North Lakes

QLD 4509 Australia

Post: PO Box 128, Burpengary

QLD 4505 Australia